‭(Hidden)‬ Content Editor (1)

All Participant Memorandum (APM)

APM 13-08: Ginnie Mae Systems Modernization Update

Published Date: 8/13/2013

As we have discussed at conferences and on outreach calls over the past several months, Ginnie Mae is engaged in a major systems modernization effort. The first phase of this modernization effort, which is targeted for deployment during the fourth quarter of calendar year 2013, includes automation of several processes that previously were paper-based, specifically requests for pool numbers, commitment authority, pool transfers and the submission of master agreements.

The new functionalities will be available to Issuers via the Ginnie Mae Enterprise Portal (GMEP) and, with the exception of pool number assignments, will require the use of an RSA token to obtain access to the new systems for purchasing commitment authority, submission of master agreements, and submittal and acceptance of pool transfers.

What is an RSA Token? An RSA Token (sometimes called a security token) is an object that controls access to a digital asset. It will replace the current fingerprint biometric device used in conjunction with GMEP. The RSA Security Token is used as part of a two-factor authentication process to determine you are who you say you are by using a system generated 4-digit passcode and a 6-digit token code (from the RSA SecurID Key Fob) that the owner enters into a login screen along with an User ID. It helps organizations protect private information and assures the identities of people, devices and applications exchanging that information.

How do I Access the New Electronic Systems? In order to perform those functions requiring the use of an RSA token, individuals must first be enrolled in GMEP and must be an authorized signatory appearing on the Issuer’s form HUD-11702. To ensure that Ginnie Mae has accurate information for each Issuer, Ginnie Mae will contact each Issuer’s Security Officer by email during the next two weeks to certify the information regarding each authorized user performing the functions listed above. The email communication also will include instructions on how to proceed with the token registration process. If your Security Officer does not receive the email communication by September 1, 2013, please have your Security Officer contact Wade Gayle at wade.gayle@bnymellon.com or (212) 815-2410.

Detailed information regarding Issuer training on the automated processes and the use of RSA tokens is forthcoming; training will be scheduled early in September. Prior to the training, however, Issuers must obtain their RSA tokens. Issuers must complete RSA testing by October 7, 2013. Failure to meet this deadline could impact the Issuer’s ability to obtain commitment authority, request or accept pool transfers, and to submit, change, and manage master agreements. Once the new modernized systems have been deployed, Issuers will no longer be able to perform these functions under the old paper-based processes.

What are the Minimum Software Standards? It also is important to note that, as of October 16, 2013, support for users running the GMEP using Microsoft’s Internet Explorer 7 (IE 7) will no longer be available. Beginning October 16, Ginnie Mae will support GMEP running under Microsoft IE 8 or IE 9 only. Microsoft IE 9 is the preferred platform.

Further, the fingerprint device that is used for authentication in GinnieNET will continue to work with both Windows XP and Windows 7 and Internet Explorer 8 and 9. The fingerprint scanning device will work with the 32 bit or 64 bit versions of Windows 7 and IE 9. Issuers should ensure that their computers and internet browsers meet these standards.

Questions regarding the systems modernization and operations deployment schedule should be directed to ginniemae1@bnymellon.com.